IDS mailing list archives

Previous By Date Next
Previous By Thread Next

RE: "False postive" database idea

From: "Rob Shein" <shoten () starpower net>
Date: Fri, 26 Sep 2003 15:40:54 -0400
Arachnids didn't address the wide variety of IDS out there; this concept
does.  Your question does, however, bring to mind an interesting possible
complication.  While snort is an open-source IDS, most IDS out there are not
open source, and probably have varied restrictions on what information about
them is considered the intellectual property of the company that produces
them.  Is there a risk that certain end-user agreements could be so
restrictive as to prohibit sharing this form of information publicly?


-----Original Message-----
From: Chris Reining [mailto:creining () packetfu org] 
Sent: Thursday, September 25, 2003 5:33 PM
To: focus-ids () securityfocus com
Subject: Re: "False postive" database idea


Why not just try and resurrect arachnids?

Chris




---------------------------------------------------------------------------
Captus Networks IPS 4000
Intrusion Prevention and Traffic Shaping Technology to:
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Automatically Control P2P, IM and Spam Traffic
 - Precisely Define and Implement Network Security & Performance Policies
FREE Vulnerability Assessment Toolkit - WhitePapers - Live Demo
http://www.securityfocus.com/sponsor/CaptusNetworks_focus-ids_000101
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: